Privacy Policy
Oy Forcit Ab is committed to protecting the privacy of persons representing its external stakeholders. Our external stakeholders include customers (including their representatives), suppliers, job applicants and website visitors. This Privacy Policy is intended to inform the representatives of our external stakeholders of the processing of their personal data by Forcit.
Data controller and contact details
Oy Forcit Ab (Business ID: 0103189-6)
Forcitintie 37
FI-10900 Hanko
Finland
For information concerning data protection and the processing of personal data, please contact dataprivacy@forcit.fi
What data do we collect
Depending on your relationship with Forcit, we may collect the following categories of personal data:
1. Identification and contact information: such as name, job title, email address, phone number, company name, and address.
2. Information related to business interactions: such as communications with Forcit, purchase history, contract details, and professional background (e.g., in recruitment).
3. Recruitment data (job applicants): such as CV and application information, education and work history, skills and qualifications, interview notes and possible reference information.
4. Data provided voluntarily by the subject, such as the contents of messages sent to us via forms, applications, or emails.
5. Technical and usage data (when visiting our website):
– IP address
– Device type and browser information
– Date, time, and duration of visits
– Pages visited and interaction behaviour
– Cookie identifiers and online tracking data
– Some of this information is used only in aggregated or anonymised form and cannot be used to identify you.
Purpose of use of data
- Cooperation with suppliers and other business partners (managing purchases and supplier relationships)
- Customer relationship management and communication (handling orders, contracts, customer service and contact requests)
- Website operation and improvement (ensuring the security and functioning of our websites, analysing website traffic and usage)
- Fulfilment of legal and statutory obligations (accounting, tax and regulatory requirements)
- Recruitment (processing job applications, evaluating candidates and managing recruitment processes)
Legal Basis for Processing Personal Data
Forcit processes personal data based on the following grounds:
- Performance of a contract: For managing customer relationships and fulfilling contractual obligations.
- Legal obligation: For complying with statutory requirements, such as accounting and tax laws.
- Legitimate interests: For example, to maintain and develop our business operations, to manage and develop stakeholder relationships, to ensure the security of our services, and to establish, exercise or defend legal claims.
- Consent: For activities like sending newsletters or using non-essential cookies, where explicit consent is required.
Rights of the data subject
- Data subjects have the right to know the information that has been collected concerning themselves
- Data subjects have the right to request rectification of the data concerning themselves
- Data subjects have the right to demand the erasure (removal) of the data concerning themselves
- Data subjects have the right to receive their personal data in a structured, commonly used, and machine-readable format and to transmit those data to another controller.
- Data subjects have the right to object to the processing of their personal data based on legitimate interests or for direct marketing purposes.
- Data subjects have the right to request restriction of the processing of their personal data in certain situations (for example, while the accuracy of the data is being verified).
- Where the processing is based on consent, data subjects have the right to withdraw their consent at any time. Withdrawing consent does not affect the lawfulness of processing carried out before the withdrawal.
- Data subjects have the right to file a complaint with the supervisory authority (The Data Protection Ombudsman in Finland, link: (http://www.tietosuoja.fi/)) if they believe their data protection rights have been violated.
Data storage, protection and processing
Personal data are stored securely and are only processed by persons who must do so to complete their work duties. Our personnel are trained in working responsibly in compliance with the requirements of the EU General Data Protection Regulation.
We store personal data for the period that is necessary for the purposes described in this Privacy Policy and to comply with legal obligations. Personal data may be erased or anonymised when they are no longer needed for these purposes or when we are required to do so by law, or upon request from the data subject where applicable. The Finnish Accounting Act, for example, demands that certain types of data be stored for longer periods, regardless of whether they contain personal data. We also collect log data, which are stored for the period required by law. For example, customer and supplier information related to contracts is typically stored for the duration of the contractual relationship and for a certain period thereafter to comply with legal obligations or to establish, exercise or defend legal claims.
Requesting and erasing personal data
When responding to requests from data subjects to access, rectify or erase their personal data, we must first verify the identity of the requester. The data subject can prove their identity at our office by presenting an official identification document, or by alternative electronic means that sufficiently ensure and verify the identity of the data subject. Appointments to visit our office for these purposes must be made in advance by emailing dataprivacy@forcit.fi.
Disclosure of data to third parties
We may disclose personal data to authorities when required to do so by law. In certain cases, we also use third-party service providers (processors) to provide, for example, IT, cloud, communications, recruitment or other support services. These service providers may process personal data on our behalf and only in accordance with our instructions. We ensure by contractual and other measures that our service providers protect personal data appropriately and in compliance with applicable data protection laws.
Data Transfers Outside the EU/EEA
If personal data are transferred outside the European Union (EU) or European Economic Area (EEA), Forcit ensures that appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission or other mechanisms permitted under Chapter V of the GDPR.
Cookies
Our website uses cookies to enhance user experience, analyse website traffic, and support our marketing efforts. Non-essential cookies (e.g., for analytics or advertising) are only activated with the user’s explicit consent.
Users can manage their cookie preferences through our cookie consent banner or settings page (hyperlink to be inserted). Detailed information about the types of cookies we use, their purposes, and how to control them is available in our Cookie Policy below.
Changes to the Privacy Policy
We reserve the right to change this Privacy Policy, for example in conjunction with amendments or specifications to legislation. Separate notice will be provided of significant changes to the Privacy Policy.
Cookie Policy
This Cookie Policy explains how Forcit Group uses cookies and similar technologies on our website. It describes what cookies are, how we use them, and your choices regarding them. We are committed to protecting your privacy and ensuring transparency in accordance with the EU General Data Protection Regulation (GDPR).
What Are Cookies?
Cookies are small text files stored on your device when you visit a website. They help websites remember your actions and preferences over a period of time, so you don’t have to re-enter them whenever you return to the site or browse from one page to another. Cookies can be first-party (set by us) or third-party (set by other services we use).
How We Use Cookies
We use cookies to improve your browsing experience, understand how our site is used, and enhance its performance. The table below outlines the cookies we use, their purpose, and how long they are stored on your device:
| Cookie Name | Type | Purpose | Expiry | Provider |
| _ga | Analytics | Google Analytics – stores and counts page views | 2 years | |
| _ga_2RG2LL3BRK | Analytics | Google Analytics – stores and counts page views | 2 years | |
| _pk_id.266.5608 | Analytics | Matomo – stores a unique user ID | 13 months | Matomo |
| _pk_ses.266.5608 | Analytics | Matomo – tracks session activity | 30 minutes | Matomo |
| wp-wpml_current_lang | Functional | Stores current language setting | Session | Forcit Group |
Legal Basis for Cookie Use
In compliance with the GDPR and Finnish law, we use strictly necessary and functional cookies based on our legitimate interest (Article 6(1)(f) GDPR). Analytics cookies are used only with your explicit consent (Article 6(1)(a) GDPR). We do not use cookies for profiling or targeted advertising.
Managing Your Cookie Preferences
When you visit our website for the first time, you are asked to consent to the use of analytics cookies. You may accept or reject cookies via the cookie banner and change your preferences at any time via the settings link provided.
You can also manage and delete cookies directly through your browser settings. Disabling certain cookies may affect how the website functions.
Data Transfers and Third Parties
Some cookies (like Google Analytics) may result in data being transferred outside the EU/EEA. We ensure that such transfers comply with the GDPR by using appropriate safeguards, such as Standard Contractual Clauses approved by the European Commission.
Your Rights
You have the right to withdraw your consent at any time, request access to or deletion of your personal data, and file a complaint with the Finnish Data Protection Ombudsman (Tietosuojavaltuutetun toimisto, link: (http://www.tietosuoja.fi/)).